Sqreen Blog
  • Why Sqreen?
  • Product
  • Pricing
  • Resources
  • Docs
  • Free Trial
Sqreen Blog

The Official Sqreen Blog

  • Why Sqreen?
  • Product
  • Pricing
  • Resources
  • Docs
  • Free Trial
Malicious Code Injections in Node.js
  • JavaScript
  • Node.js
  • Security
  • 5 minute read
  • 9 comments

One easy way to inject malicious code in any Node.js application

  • Vladimir
  • August 22, 2016
tl;dr This article describes a method of injecting arbitrary code in Node.js modules. It does not encourage unethical behavior. The chain used to include instances of modules can be tampered to…
View Post
  • Dev
  • JavaScript
  • Python
  • 3 minute read
  • 6 comments

Embedding JavaScript into Python

  • Jb
  • August 2, 2016
  TL; DR: v8.py PyMiniRacer brings a compiled V8 interpreter and a simple interface to the Python community: Our needs Sqreen needs a stable, performant and embeddable JavaScript solution for Python.…
View Post
Myheaders.sqreen.com
  • Dev
  • Security
  • 4 minute read
  • One comment

7 HTTP headers to secure your app for the busy web developer

  • Alexander
  • July 28, 2016
Modern web browsers offer a lot of security features aimed at protecting your users from a wide variety of threats such as malware installed on their device, hackers listening to…
View Post

From the Archive: Application security from the inside [Presentation at OWASP]

  • Jb
  • July 25, 2016
Today we are sharing a presentation that our CTO Jean-Baptiste Aviat did at the OWASP (Open Web Application Security Project) a couple of months ago. Hackers have several ways to…
View Post
frozen python
  • Dev
  • Python
  • 8 minute read
  • 3 comments

Freeze your Python with str.encode and threads

  • Boris
  • July 12, 2016
While working on the sqreen.com Python agent, I discovered a rather nasty, but fun to analyse bug that lead me deep into Python internals. The nasty bug  I was working…
View Post
Content Security Policy CSP
  • Dev
  • Ruby
  • Security
  • 4 minute read
  • One comment

Integrating Content Security Policy into your Rails applications

  • Jb
  • July 11, 2016
TL; DR Content Security Policy (CSP) is an HTTP response header that restricts the browser to loading external assets such as scripts, styles or media from a wide variety of…
View Post
App Security Illustration
  • Dev
  • DevOps
  • Security
  • 5 minute read
  • No comments

App Security – The painful invisible challenge that we love to hate

  • Pierre
  • July 8, 2016
We fought on the security frontline at Apple for about ten years. Our mission was simple: to attack products using any means necessary and then work on the fixes with development…
View Post

Tune your App Performance (and get fit for summer)

  • Jb
  • July 8, 2016
Premature optimization is the root of all evil — Donald Knuth  
View Post

Ruby on Rails Security in your Continuous Integration

  • Jb
  • July 7, 2016
Foundations of your development cycle “Never send a human to do a machine’s job ” — Agent Smith  How open-source public tools can help improve your software security in your Continuous…
View Post
Developers Vs. Security
  • Dev
  • Security
  • 0 minute read
  • No comments

The usual (git) flow of Developers Vs. Security

  • Pierre
  • July 7, 2016
View Post

Posts navigation

Previous 1 … 17 18
Search
Recent Posts
  • Preventing SQL injections in Java (and other vulnerabilities)
  • The different types of cross-site scripting (XSS)
  • Sqreen’s architecture through the ages: part one
  • How RASPs and WAFs can work together
  • Remote code execution (RCE), explained: what it is and how to prevent it
Categories
  • Dev (54)
  • DevOps (14)
  • Go (4)
  • Java (4)
  • JavaScript (7)
  • Node.js (13)
  • PHP (2)
  • Python (18)
  • Ruby (15)
  • Security (129)
  • Sqreen Product (32)
By the Sqreen Team ❤
© Sqreen 2015-2021 – Privacy Policy